[Firehol-support] lan-gateway/multiple public interfaces/services on the router

Costa Tsaousis costa at tsaousis.gr
Thu Apr 1 08:21:17 CEST 2004 

William,

send the generated .conf to me, together with the output of the following
commands:

ip route show
ip addr show
ip link show

Send these directly to me, since this will include private information of
your network, and I'll respond to the list for the rest of us to follow.

Costa


> Hi,
> 	I did try this, but I cannot say that it worked well.  At the very
> least, it failed to work with my GRE tunnels.  It certainly did not
> produce output like one finds in the lan-gateway file.  In particular,
> perhaps since it could not figure out which interface is public and
> which is home, it produced router entries which look very wrong like the
> following:
>
> router1 inface Charter0 outface Charter0 src "66.189.84.0/22" dst not
> "${UNROUTABLE_IPS} 66.189.84.0/22"
>
> 	If I read this correctly, I am forwarding from one interface to the
> same interface.  If you want, I can send the entire .conf
>
> 				Bill
>
> ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
> On Wed, 2004-03-31 at 13:44, Costa Tsaousis wrote:
>> William,
>>
>> fire up all the interfaces and then execute:
>>
>> firehol.sh helpme >/tmp/firehol.conf
>>
>> You configuration file is there! Just customize it to your needs.
>>
>> Costa
>>
>>
>>
>> > Hi,
>> > 	I am a brand new firehol user.  I have some requirements which are
>> not
>> > met by the lan-gateway example script.  I was wondering if anyone
>> > written a script to fulfill similar needs.  Frankly, I was hoping to
>> > borrow a script and customize it as required.  So, here are the needs
>> I
>> > have not addressed by the lan-gateway example in order of my
>> preference:
>> >
>> > 1. Support for multiple external interfaces.  Due to the fact that I
>> use
>> > GRE tunnels, I have 7 such interfaces.
>> > 2. Support for services running on the router like DHCP/DNS...
>> > 3. Support for SNAT or MASQ depending upon the config of the multiple
>> > external interface.
>> > 4. Support for multiple trusted interfaces.( For extra credit. :-) )
>> >
>> > 	I could use all of the above in addition to these features already
>> > supported by the lan-gateway example.  If you have a script with a
>> > subset of the above, that would be great.  I will be maintaining this
>> > script, so perhaps we could share this burden.
>> >
>> > 	Thanks for your time and your help.
>> >
>> > 				Bill Brown
>> >
>> > --
>> > William L. Brown
>> > Work:  603-465-2114
>> > Email: bbrown at addtoit.com
>> >
>> >
>>
>>
>> -------------------------------------------------------
>> This SF.Net email is sponsored by: IBM Linux Tutorials
>> Free Linux tutorial presented by Daniel Robbins, President and CEO of
>> GenToo technologies. Learn everything from fundamentals to system
>> administration.http://ads.osdn.com/?ad_id70&alloc_id638&opÃŒk
>> _______________________________________________
>> Firehol-support mailing list
>> Firehol-support at lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/firehol-support
> --
> William L. Brown
> Work:  603-465-2114
> Fax:   603-465-2114
> Cell:  617-803-9156
> Email: bbrown at addtoit.com
> Home:  603-465-2948
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by: IBM Linux Tutorials
> Free Linux tutorial presented by Daniel Robbins, President and CEO of
> GenToo technologies. Learn everything from fundamentals to system
> administration.http://ads.osdn.com/?ad_id70&alloc_id638&op=click
> _______________________________________________
> Firehol-support mailing list
> Firehol-support at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/firehol-support
>

More information about the Firehol-support mailing list